My Azure stencil collection for Visio. Highly functional and always up to date.

4,450 visio 🎨 shapes, stencils, symbols, and icons collection to visually represent your IT infrastructure

NIST CSF Maturity Toolkit

Responsible AI Toolbox is a suite of tools providing model and data exploration and assessment user interfaces and libraries that enable a better understanding of AI systems. These interfaces and l…

8 Lessons, Kick-start Your Cybersecurity Learning.

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), ar…

CISSP Resources

Azure Governance Visualizer aka AzGovViz is a PowerShell script that captures Azure Governance related information such as Azure Policy, RBAC (a lot more) by polling Azure ARM, Storage and Microsof…

Cybersecurity Evaluation Tool

Supplemental information and resources for the Security Benchmark documentation available at https://docs.microsoft.com/azure/security/benchmarks/.

The Web Security Testing Guide (WSTG) Project produces the premier cybersecurity testing resource for web application developers and security professionals.

Curated list of resources for security Governance, Risk Management, Compliance and Audit professionals and enthusiasts (if they exist).

🦉 A documentation generator

Bicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @JesseLoudon

A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon

PacBot (Policy as Code Bot)

SOC 2 should be easy to get done and it should be inexpensive. Here's everything you wanted to know.

A collection of awesome framework, libraries, documents, learning tutorials, resources about SOC 2 tools and processes.

Template SOC2 Policy Authority - documentation pipeline

Compliance automation framework, focused on SOC2

CISO Assistant is a one-stop-shop for GRC, covering Risk, AppSec and Audit Management and supporting +70 frameworks worldwide with auto-mapping: NIST CSF, ISO 27001, SOC2, CIS, PCI DSS, NIS2, CMMC,…

Documenting SOC 2 tools and processes

Security compliance platform - SOC2, CMMC, ASVS, ISO27001, HIPAA, NIST CSF, NIST 800-53, CSC CIS 18, PCI DSS, SSF tracking. https://gapps.darkbanner.com

A set of policies, standards and control procedures with mapping to HIPAA, NIST CSF, PCI DSS, SOC2, FedRAMP, CIS Controls, and more.

A set of policies, standards and procedures with mapping to HIPAA, NIST CSF, PCI DSS, FedRAMP, CIS Controls

Security Engineer Prep for Azure

Open source documentation of Microsoft Azure

A concise, directive, specific, flexible, and free incident response plan template